zweilosec
diff --git a/‎README.md
+5-6 b/‎README.md
+5-6
diff --git a/‎SUMMARY.md
+7-3 b/‎SUMMARY.md
+7-3
diff --git a/‎hacking-methodology.md
+17-21 b/‎hacking-methodology.md
+17-21
@@ -6,7 +6,7 @@ description: >-
 
 # Hacker's Rest
 
-These are my publicly accessible notes from various sources for penetration testing, red-teaming, OSCP, Capture the Flag \(CTF\) challenges, and my [Vulnhub](https://www.vulnhub.com/)/ [Hack the Box](https://hackthebox.eu) machine [write-ups](https://zweilosec.github.io/).
+These are my publicly accessible notes from various sources for penetration testing, red-teaming, OSCP, Capture the Flag (CTF) challenges, and my [Vulnhub](https://www.vulnhub.com/)/ [Hack the Box](https://hackthebox.eu) machine [write-ups](https://zweilosec.github.io/).
 
 {% hint style="warning" %}
 Warning - These notes are largely unformatted right now. They are based on my way of learning things - by reading, doing, studying, exploring, and taking notes. Cleaning up and formatting comes later.
@@ -24,7 +24,7 @@ Warning - These notes are largely unformatted right now. They are based on my wa
 
 If you would like to give suggestions or even commit changes to these pages feel free to head to my GitHub page at:
 
-{% embed url="https://github.com/zweilosec/Infosec-Notes" caption="" %}
+{% embed url="https://github.com/zweilosec/Infosec-Notes" %}
 
 ### How to contribute
 
@@ -69,13 +69,13 @@ Always ensure you have **explicit** permission to access any computer system **b
 ### Windows
 
 * [Windows Basics](windows-1/windows-basics.md)
-* [Hardening & Configuration Guide](windows-1/windows-hardening.md)  
+* [Hardening & Configuration Guide](windows-1/windows-hardening.md) &#x20;
 * [Red Team Notes](windows-1/windows-redteam/)
   * [Enumeration](windows-1/windows-redteam/enumeration.md)
   * [Getting Access](windows-1/windows-redteam/getting-access.md)
   * [Privilege Escalation](windows-1/windows-redteam/privilege-escalation.md)
   * [Persistence](windows-1/windows-redteam/persistence.md)
-  * [Active Directory](windows-1/windows-redteam/active-directory.md)
+  * [Active Directory](windows-1/windows-redteam/active-directory/)
   * [PowerShell](windows-1/powershell.md)
 
 ### MacOS
@@ -104,7 +104,7 @@ Always ensure you have **explicit** permission to access any computer system **b
 
 * [Cryptography & Encryption](os-agnostic/password-cracking/)
 * [Network Hardware](os-agnostic/network-hardware.md)
-* [OS Agnostic](os-agnostic/os_agnostic.md)
+* [OS Agnostic](os-agnostic/os\_agnostic.md)
 * [OSINT](os-agnostic/osint.md)
 * [Password Cracking](os-agnostic/password-cracking/)
   * [Gathering the Hashes](os-agnostic/password-cracking/gathering-the-hashes.md)
@@ -128,4 +128,3 @@ Always ensure you have **explicit** permission to access any computer system **b
 See my [list of outside sources](tools-cheatsheets.md)!
 
 If you like this content and would like to see more, please consider [buying me a coffee](https://www.buymeacoffee.com/zweilosec)!
-
@@ -5,7 +5,7 @@
 * [Hacking Methodology](hacking-methodology.md)
 * [Hands-on Practice](hands-on-practice.md)
 
-## Linux <a href="linux-1" id="linux-1"></a>
+## Linux <a href="#linux-1" id="linux-1"></a>
 
 * [Linux Basics](linux-1/linux-basics.md)
 * [Hardening & Setup](linux-1/linux-hardening/README.md)
@@ -19,7 +19,7 @@
 * [Vim](linux-1/vim.md)
 * [Test](linux-1/test.md)
 
-## Windows <a href="windows-1" id="windows-1"></a>
+## Windows <a href="#windows-1" id="windows-1"></a>
 
 * [Windows Basics](windows-1/windows-basics.md)
 * [PowerShell](windows-1/powershell.md)
@@ -29,7 +29,11 @@
   * [Getting Access](windows-1/windows-redteam/getting-access.md)
   * [Privilege Escalation](windows-1/windows-redteam/privilege-escalation.md)
   * [Persistence](windows-1/windows-redteam/persistence.md)
-  * [Active Directory](windows-1/windows-redteam/active-directory.md)
+  * [Active Directory](windows-1/windows-redteam/active-directory/README.md)
+    * [Enumeration](windows-1/windows-redteam/active-directory/enumeration.md)
+    * [Getting Access](windows-1/windows-redteam/active-directory/getting-access.md)
+    * [Privilege Escalation](windows-1/windows-redteam/active-directory/privilege-escalation.md)
+    * [Persistence](windows-1/windows-redteam/active-directory/persistence.md)
   * [Kerberos](windows-1/windows-redteam/kerberos.md)
   * [Impacket](windows-1/windows-redteam/impacket.md)
 
 
@@ -3,26 +3,25 @@
 {% hint style="success" %}
 Hack Responsibly.
 
-Always ensure you have **explicit** permission to access any computer system **before** using any of the techniques contained in these documents.  You accept full responsibility for your actions by applying any knowledge gained here.  
+Always ensure you have **explicit** permission to access any computer system **before** using any of the techniques contained in these documents.  You accept full responsibility for your actions by applying any knowledge gained here. &#x20;
 {% endhint %}
 
 Not much here yet...please feel free to contribute at [https://www.github.com/zweilosec](https://github.com/zweilosec)
 
-## MITRE ATT&CK
+## MITRE ATT\&CK
 
 {% embed url="https://attack.mitre.org" %}
 
 | [Initial Access](https://attack.mitre.org/tactics/TA0001) | [Execution](https://attack.mitre.org/tactics/TA0002) | [Persistence](https://attack.mitre.org/tactics/TA0003) | [Privilege Escalation](https://attack.mitre.org/tactics/TA0004) | [Defense Evasion](https://attack.mitre.org/tactics/TA0005) | [Credential Access](https://attack.mitre.org/tactics/TA0006) | [Discovery](https://attack.mitre.org/tactics/TA0007) | [Lateral Movement](https://attack.mitre.org/tactics/TA0008) | [Collection](https://attack.mitre.org/tactics/TA0009) | [Command and Control](https://attack.mitre.org/tactics/TA0011) | [Exfiltration](https://attack.mitre.org/tactics/TA0010) | [Impact](https://attack.mitre.org/tactics/TA0040) |
-| :--- | :--- | :--- | :--- | :--- | :--- | :--- | :--- | :--- | :--- | :--- | :--- |
-
+| --------------------------------------------------------- | ---------------------------------------------------- | ------------------------------------------------------ | --------------------------------------------------------------- | ---------------------------------------------------------- | ------------------------------------------------------------ | ---------------------------------------------------- | ----------------------------------------------------------- | ----------------------------------------------------- | -------------------------------------------------------------- | ------------------------------------------------------- | ------------------------------------------------- |
 
 ### Categories
 
-The hacking methodology categories align with the enterprise attack tactics in the MITRE ATT&CK matrix. The categories are:
+The hacking methodology categories align with the enterprise attack tactics in the MITRE ATT\&CK matrix. The categories are:
 
 * **Initial access** - Gaining initial entry to the target network, usually involving password-guessing, exploits, or phishing emails
 * **Execution** - Launching attacker tools and malicious code, including RATs and backdoors
-* **Persistence** - Creating autostart extensibility points \(ASEPs\) to remain active and survive system restarts
+* **Persistence** - Creating autostart extensibility points (ASEPs) to remain active and survive system restarts
 * **Privilege escalation** - Obtaining higher permission levels for code by running it in the context of a privileged process or account
 * **Defense evasion** - Avoiding security controls by, for example, turning off security apps, deleting implants, and running rootkits
 * **Credential access** - Obtaining valid credentials to extend control over devices and other resources in the network
@@ -32,26 +31,24 @@ The hacking methodology categories align with the enterprise attack tactics in t
 * **Command and control** - Connecting to attacker-controlled network infrastructure to relay data or receive commands
 * **Exfiltration** - Extracting data from the network to an external, attacker-controlled location
 
-\*\*\*\*
+****
 
 ## General methodology
 
-* Log all commands of the current session
-
-  ```text
-  script $session_name.log
+*   Log all commands of the current session
 
-  #when finished
-  exit
-  ```
+    ```
+    script $session_name.log
 
+    #when finished
+    exit
+    ```
 * Use Joplin, OneNote, CherryTree or other notetaking program to document findings
-* Set the Target IP Address to the `$ip` system variable
-
-  ```text
-  export ip=target_ip
-  ```
+*   Set the Target IP Address to the `$ip` system variable
 
+    ```
+    export ip=target_ip
+    ```
 * Run `nmap -sCV` for all TCP and UDP ports
 * For every open port TCP/UDP
   * Find service and version
@@ -82,7 +79,6 @@ Proper and thorough enumeration is the key to a successful engagement. Privilege
 * Processing - Sort through data, analyze, and prioritize.
 * Searching - Know what to search for and where to find the exploit code.
 * Adapting - Customize the exploit so it fits. Not every exploit works for every system "out of the box".
-* Trying - Get ready for \(lots of\) trial and error.
+* Trying - Get ready for (lots of) trial and error.
 
 If you like this content and would like to see more, please consider [buying me a coffee](https://www.buymeacoffee.com/zweilosec)!
-